Lucene search
K

10 matches found

SUSE Linux
SUSE Linux
added 2026/03/03 12:40 p.m.5 views

Security update for freerdp

This update for freerdp fixes the following issues: CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. CVE-2026-23533: improper validation can lead to heap buffer overflow in cleardecompressresidualdata...

7.7CVSS6.1AI score0.00756EPSS
Exploits6References24
OSV
OSV
added 2026/03/03 12:40 p.m.4 views

SUSE-SU-2026:0761-1 Security update for freerdp

This update for freerdp fixes the following issues: - CVE-2026-22855: heap-buffer-overflow in smartcardunpacksetattribcall bsc1256721. - CVE-2026-22857: heap-use-after-free in irpthreadfunc bsc1256723. - CVE-2026-23533: improper validation can lead to heap buffer overflow in...

9.8CVSS6.1AI score0.00756EPSS
Exploits6References13
Cvelist
Cvelist
added 2026/02/11 12:0 a.m.25 views

CVE-2025-69873

ajv Another JSON Schema Validator before 8.18.0 is vulnerable to Regular Expression Denial of Service ReDoS when the $data option is enabled. The pattern keyword accepts runtime data via JSON Pointer syntax $data reference, which is passed directly to the JavaScript RegExp constructor without...

2.9CVSS0.00492EPSS
Exploits1References6
Ubuntu
Ubuntu
added 2023/09/05 1:6 p.m.62 views

LSN-0097-1: Kernel Live Patch Security Notice

It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code.CVE-2023-3090...

7.8CVSS7.6AI score0.08894EPSS
Exploits16
Ubuntu
Ubuntu
added 2023/07/28 1:46 p.m.82 views

USN-6261-1: Linux kernel (IoT) vulnerabilities

It was discovered that the IP-VLAN network driver for the Linux kernel did not properly initialize memory in some situations, leading to an out-of- bounds write vulnerability. An attacker could use this to cause a denial of service system crash or possibly execute arbitrary code. CVE-2023-3090 Sh...

7.8CVSS7.7AI score0.08894EPSS
Exploits15
OpenVAS
OpenVAS
added 2023/07/27 12:0 a.m.44 views

Ubuntu: Security Advisory (USN-6251-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS7.9AI score0.08894EPSS
Exploits15References2
Ubuntu
Ubuntu
added 2023/07/25 10:28 a.m.65 views

LSN-0096-1: Kernel Live Patch Security Notice

It was discovered that the Broadcom FullMAC USB WiFi driver in the Linux kernel did not properly perform data buffer size validation in some situations. A physically proximate attacker could use this to craft a malicious USB device that when inserted, could cause a denial of service system crash ...

7.8CVSS7.3AI score0.16642EPSS
Exploits2
SUSE CVE
SUSE CVE
added 2023/02/15 6:5 a.m.4 views

SUSE CVE-2008-5904

The rdprdpprocesscolorpointerpdu function in rdp/rdprdp.c in xrdp 0.4.1 and earlier allows remote RDP servers to have an unknown impact via input data that sets crafted values for certain length variables, leading to a buffer overflow...

7.5CVSS7.4AI score0.0735EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2018/01/10 12:0 a.m.89 views

Ubuntu 17.10 : linux vulnerabilities (USN-3523-1) (Meltdown)

Jann Horn discovered that microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized memory reads via sidechannel attacks. This flaw is known as Meltdown. A local attacker could use this to expose sensitive information, including kernel memory...

7.8CVSS7.3AI score0.84172EPSS
Exploits19References6
OSV
OSV
added 2016/07/11 2:0 a.m.3 views

UBUNTU-CVE-2016-3764

media/libmediaplayerservice/MetadataRetrieverClient.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-07-01 allows attackers to obtain sensitive pointer information via a crafted application, aka internal bug 28377502...

4CVSS6.1AI score0.00322EPSS
Exploits0References3
Rows per page
Query Builder